Configure Outbound Secure Conversation

The following are the steps to establish outbound secure conversation between a and some STS (Security Token Service) or back-end service:

gateway

The following are the steps to establish outbound secure conversation between a API Gateway and some STS (Security Token Service) or back-end service:

Check if there is a secure conversation session mapping to the authenticated user and the back-end service.

Use the Look Up Outbound Secure Conversation Session Assertion.

Generate a new RST SOAP message to request a security token (either a Security Context Token or a SAML Token).

Use the Build RST SOAP Request Assertion.

Apply the necessary decoration requirements to the RST SOAP message, such as adding WS-Addressing, adding UsernameToken, or configuring WS-Security decoration.

Send the RST Request to a back-end service or an STS using the Route via HTTP(S) Assertion.

Process the RSTR Response SOAP message to extract the security token (either a Security Context Token or a SAML Token).

Use the Process RSTR Response Assertion.

Establish a secure connection and save (or cache) the secure conversation session by using the Establish Outbound Secure Conversation Assertion.

If the session is no longer used, you may cancel the session using the Cancel Security Context Assertion.

Policy Manager Other Security

Content feedback and comments

CA API Gateway 9.1

Configure Outbound Secure Conversation